The
Security
Blog

Latest News

• The correct CV(or malware)

  Sep 03, 2010 - Today we have observed some messages which at first glance appeared to be somebody trying

• Zombie game inspires scammers to target your brains

  Sep 02, 2010 - Zombies. Whether they’re shuffling Romero types, the wisecracking “send more cops” variety or even the

• We are good at finding names

  Sep 02, 2010 - We have received this file today. Rogue creators are spending less time creating interface and

• To infinity and beyond

  Sep 02, 2010 - SophosLabs has discovered a technique in anti-virus marketing, which we detect as Spin/BigNumber-P. Typical behaviour

• Organized Web Mobsters Getting Jobs Inside Corporations

  Sep 02, 2010 - In 2009, there were a reported 140 million records compromised, compared to 360 million in

• Putting BitTorrent Under the Spotlight

  Sep 02, 2010 - We have added a new video that introduces the key security concerns swirling around

• Ben Franklin’s Endpoint Security Advice

  Sep 02, 2010 - Ben Franklin dished out some pretty good security advice in his day. In fact, he

• Safe Web Surfing Rule # 1: READ the URL

  Sep 02, 2010 - Safe Web Surfing Rule # 2: See Rule

• U.S. Labor Day: phishers won’t be on holiday

  Sep 02, 2010 - Holidays are times when we see a big uptick in email retail advertising. They are

• Where’s Waldo? Adjusting Law and Policy for Location-Based Services

  Sep 02, 2010 - Last month, my colleague Christopher Burgess shared some thoughts on the “

Featured

• Security vulnerabilities in Pligg CMS version 1.0.4

  Sep 03, 2010 - While beta testing the latest version of Acunetix WVS v7, we found a large number of security vulnerabilities in various web applications. In the following days we will publish some of these vulnerabilities.  Note that we will not publish vulnerabilities found in applications that are not commonly used or in beta stage. One of the tested web applications is Pligg;Pligg is an

  Read full story

More Featured News

• Netsparker Web Application Scanner

  Aug 08, 2010 -  Netsparker is a web application security product from Mavituna Security.  They recently released a community edition of their scanner, although the it’s pretty stripped down so I ‘m not sure

• Getting developers on board with security – once and for all

  Aug 04, 2010 -  Making Web application security work is more than simply telling developers they need to write better code. We can

• Discovered XSS on Facebook can lead to account hijack

  Jul 28, 2010 -  Facebook rates as the second most popular website on the internet with 400 million active users. When such a website

• Web security oversights: Don’t overlook the “small” stuff

  Jul 14, 2010 -  I was reviewing the most recent SANS @RISK Consensus Security Vulnerability Alert and it reminded me of how

More News

• Chilean miners tragedy used to distribute malware
• Tenable Security Showcase – New York City
• Faulty Fiverrs
• FakeAV, now with sounds
• Cyberthieves Hit Another University
• Security Advisory for NetWare 6.5 OpenSSH
• GFI/Sunbelt Labs quarterly briefing is on Web
• How Do You Find 200,000 Unique Samples a Day?
• Mariposa: the Slovenian story
• Twitter Spam and the OAuthcalypse
• When do 258 tweets equal nearly half a million dollars?
• Phishing Attempt Alert!
• CPAlead Spam on YouTube
• DLL Hijacking and Why Loading Libraries is Hard
• Corporate Identity Theft Used to Obtain Code Signing Certificate
• I May Never Text Again: More Facebook Spam
• What’s the success rate of Facebook spam?
• Malware and Critical Infrastructure
• PS3 Jailbreak Trojan
• Once Again, Zeus